|
273431
|
7.5 |
HIGH
Network
|
ratbox
|
ircd-ratbox
|
A Denial of Service vulnerability exists in ircd-ratbox 3.0.9 in the MONITOR Command Handler.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2015-5290
|
2024-11-21 11:32 |
2019-12-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273432
|
9.8 |
CRITICAL
Network
|
pixman
|
pixman
|
An integer overflow issue has been reported in the general_composite_rect() function in pixman prior to version 0.32.8. An attacker could exploit this issue to cause an application using pixman to cr…
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2015-5297
|
2024-11-21 11:32 |
2019-08-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273433
|
8.8 |
HIGH
Network
|
axiomsl
|
axiom
|
AxiomSL's Axiom Google Web Toolkit module 9.5.3 and earlier is vulnerable to a Session Fixation attack.
|
CWE-384
Session Fixation
|
CVE-2015-5384
|
2024-11-21 11:32 |
2019-04-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273434
|
7.5 |
HIGH
Network
|
kdcproxy_project
|
kdcproxy
|
python-kdcproxy before 0.3.2 allows remote attackers to cause a denial of service via a large POST request.
|
CWE-20
Improper Input Validation
|
CVE-2015-5159
|
2024-11-21 11:32 |
2018-10-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273435
|
9.8 |
CRITICAL
Network
|
phpwhois_project
|
phpwhois
|
phpWhois allows remote attackers to execute arbitrary code via a crafted whois record.
|
CWE-94
Code Injection
|
CVE-2015-5243
|
2024-11-21 11:32 |
2018-08-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273436
|
5.5 |
MEDIUM
Local
|
libvirt
redhat
|
libvirt
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux
enterprise_linux_server
enterprise_linux_server_tus
enterprise_linux_server_aus
enterprise_linux_se…
|
libvirt before 2.2 includes Ceph credentials on the qemu command line when using RADOS Block Device (aka RBD), which allows local users to obtain sensitive information via a process listing.
|
CWE-200
Information Exposure
|
CVE-2015-5160
|
2024-11-21 11:32 |
2018-08-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273437
|
4.8 |
MEDIUM
Network
|
ibm
|
bigfix_remote_control
|
IBM BigFix Remote Control before Interim Fix pack 9.1.2-TIV-IBRC912-IF0001 makes it easier for man-in-the-middle attackers to decrypt traffic by leveraging a weakness in its encryption protocol. IBM …
|
CWE-326
Inadequate Encryption Strength
|
CVE-2015-4953
|
2024-11-21 11:32 |
2018-03-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273438
|
8.8 |
HIGH
Network
|
ibm
|
endpoint_manager_for_remote_control
|
The on-demand plugin in IBM Endpoint Manager for Remote Control 9.0.1 and 9.1.0 allows user-assisted remote attackers to execute arbitrary code via unspecified vectors. IBM X-Force ID: 105196.
|
NVD-CWE-noinfo
|
CVE-2015-4952
|
2024-11-21 11:32 |
2018-03-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273439
|
6.5 |
MEDIUM
Network
|
ibm
|
tealeaf_customer_experience
|
The search and replay servers in IBM Tealeaf Customer Experience 8.0 through 9.0.2 allow remote attackers to bypass authentication via unspecified vectors. IBM X-Force ID: 105896.
|
CWE-287
Improper Authentication
|
CVE-2015-4987
|
2024-11-21 11:32 |
2018-03-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273440
|
5.9 |
MEDIUM
Network
|
ibm
|
bigfix_remote_control
|
IBM BigFix Remote Control before Interim Fix pack 9.1.2-TIV-IBRC912-IF0001 improperly allows self-signed certificates, which might allow remote attackers to conduct spoofing attacks via unspecified v…
|
CWE-295
Improper Certificate Validation
|
CVE-2015-4954
|
2024-11-21 11:32 |
2018-03-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
